VYPR
High severity8.8NVD Advisory· Published Feb 1, 2023· Updated Jun 17, 2026

CVE-2023-24610

CVE-2023-24610

Description

NOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the "practice logo" upload feature. The client-side checks can be bypassed. This may allow attackers to steal Protected Health Information because the product is for health charting.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • NOSH/NOSHdescription
  • NOSH/NOSHllm-fuzzy
    Range: 4a5cfdb

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.